Method, system, and computer program product for computer system vulnerability analysis and fortification

US 20050198527A1
Filed: 03/08/2004
Published: 09/08/2005
Est. Priority Date: 03/08/2004
Status: Active Grant

First Claim

Patent Images

1. A method for detection and correction of security vulnerabilities in a computing environment, comprising:

analyzing a software solution to identify legal and illegal external interfaces thereto;

attempting to access said software solution using the identified illegal external interfaces; and

storing a record of any illegal external interfaces that allow access to said software solution.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method, system, and computer program product for the automatic detection and fixing of security vulnerabilities in both individual software components and across complex, multi-component software solutions. The architecture of the software solution to be monitored is analyzed prior to its being monitored. Data derived from the analysis is used to proactively identify possible ways to attack the software solution. The software solution being monitored and the system on which it runs is periodically scanned, and attacks on it are attempted. A list of possible attacks is continuously updated, for example, in a manner similar to virus signatures provided by virus security companies, and a log is generated describing which attacks were successful and which ones failed.

Citations

21 Claims

1. A method for detection and correction of security vulnerabilities in a computing environment, comprising:
- analyzing a software solution to identify legal and illegal external interfaces thereto;
  
  attempting to access said software solution using the identified illegal external interfaces; and
  
  storing a record of any illegal external interfaces that allow access to said software solution.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, wherein said software solution comprises at least two independent software programs interacting to form the software solution.
  - 3. The method of claim 1, further comprising:
    - automatically deploying a corrective measure to said software solution based upon said identified illegal external interface.
  - 4. The method of claim 3, further comprising:
    - storing each of said corrective measures in a memory.
  - 5. The method of claim 4, further comprising:
    - making said stored record of illegal external interfaces that allow access, and said stored record of corrective measures available to all users of said detection and correction method, on a global basis.
  - 6. The method of claim 5, wherein said stored record of illegal external interfaces that allow access, and said stored record of corrective measures is made available on a global basis via a network connection.
  - 7. The method of claim 1, wherein said analyzing step includes:
    - analyzing an XML description of each legal and illegal external interface; and
      
      mapping each legal and illegal external interface into a machine-readable format.

8. A system for detection and correction of security vulnerabilities in a computing environment, comprising:
- means for analyzing a software solution to identify legal and illegal external interfaces thereto;
  
  means for attempting to access said software solution using the identified illegal external interfaces; and
  
  means for storing a record of any illegal external interfaces that allow access to said software solution.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The system of claim 8, wherein said software solution comprises at least two independent software programs interacting to form the software solution.
  - 10. The system of claim 8, further comprising:
    - means for automatically deploying a corrective measure to said software solution based upon said identified illegal external interface.
  - 11. The system of claim 10, further comprising:
    - means for storing each of said corrective measures in a memory.
  - 12. The system of claim 11, further comprising:
    - means for making said stored record of illegal external interfaces that allow access, and said stored record of corrective measures available to all users of said detection and correction method, on a global basis.
  - 13. The system of claim 12, wherein said stored record of illegal external interfaces that allow access, and said stored record of corrective measures is made available on a global basis via a network connection.
  - 14. The system of claim 8, wherein said analyzing means includes:
    - means for analyzing an XML description of each legal and illegal external interface; and
      
      means for mapping each legal and illegal external interface into a machine-readable format.

15. A computer program product for detection and correction of security vulnerabilities in a computing environment, the computer program product comprising a computer-readable storage medium having computer-readable program code embodied in the medium, the computer-readable program code comprising:
- computer-readable program code that analyzes a software solution to identify legal and illegal external interfaces thereto;
  
  computer-readable program code that attempts to access said software solution using the identified illegal external interfaces; and
  
  computer-readable program code that stores a record of any illegal external interfaces that allow access to said software solution.
- View Dependent Claims (16, 17, 18, 19, 20, 21)
- - 16. The computer program product of claim 15, wherein said software solution comprises at least two independent software programs interacting to form the software solution.
  - 17. The computer program product of claim 15, further comprising:
    - computer-readable program code that automatically deploys a corrective measure to said software solution based upon said identified illegal external interface.
  - 18. The computer program product of claim 17, further comprising:
    - computer-readable program code that stores each of said corrective measures in a memory.
  - 19. The computer program product of claim 18, further comprising:
    - computer-readable program code that makes said stored record of illegal external interfaces that allow access, and said stored record of corrective measures available to all users of said detection and correction method, on a global basis.
  - 20. The computer program product of claim 19, wherein said stored record of illegal external interfaces that allow access, and said stored record of corrective measures is made available on a global basis via a network connection.
  - 21. The computer program product of claim 15, wherein said computer-readable program code for analyzing the software solution includes:
    - computer-readable program code that analyzes an XML description of each legal and illegal external interface; and
      
      computer-readable program code that maps each legal and illegal external interface into a machine-readable format.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
International Business Machines Corporation
Original Assignee
International Business Machines Corporation
Inventors
Johnson, David P., Miller, Brent A., Rabinovitz, Daniel S., Joshi, Neeraj R.

Granted Patent

US 7,603,714 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/22
CPC Class Codes

G06F 21/577   Assessing vulnerabilities a...

H04L 63/1433   Vulnerability analysis

H04L 63/1441   Countermeasures against mal...

Method, system, and computer program product for computer system vulnerability analysis and fortification

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

21 Claims

Specification

Solutions

Use Cases

Quick Links

Method, system, and computer program product for computer system vulnerability analysis and fortification

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

21 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links